$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd818d78-5bf5-4ab2-a248-de1006ba6b9d.roa File: cd818d78-5bf5-4ab2-a248-de1006ba6b9d.roa (raw, json) Hash identifier: bapfkhN5TLRIGV5z6q4c33KgEB1NWQXIxF/d3lVzpIo= Subject key identifier: AF:47:56:15:B9:93:6B:02:2F:D5:96:21:AF:24:70:36:EF:F5:34:20 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 201F90BA169940783057250FD7E75DD477EDE5B0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd818d78-5bf5-4ab2-a248-de1006ba6b9d.roa Signing time: Fri 08 Nov 2024 00:00:00 +0000 ROA not before: Fri 08 Nov 2024 00:00:00 +0000 ROA not after: Fri 13 Dec 2024 23:59:59 +0000 asID: 14618 IP address blocks: 16.156.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Nov 2024 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:1f:90:ba:16:99:40:78:30:57:25:0f:d7:e7:5d:d4:77:ed:e5:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Nov 8 00:00:00 2024 GMT Not After : Dec 13 23:59:59 2024 GMT Subject: serialNumber=0e29309728d22c31939e9a33bd0787f1ab1376fecf7a078ef800f1e898af7fbb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9a:15:93:ac:ad:51:e1:21:eb:b2:98:20:3d: 28:49:a2:23:01:1c:75:de:d2:e5:6c:af:68:f3:93: db:69:f4:16:19:ba:59:5e:b2:14:46:41:a8:fe:26: f1:d6:2d:b2:4d:90:0c:3f:43:f1:9d:90:27:11:91: 5f:49:4a:6f:c9:c8:44:93:6d:31:13:13:ee:37:ef: 2e:3e:8d:2b:74:fd:fe:f6:1b:7f:9b:98:8f:c2:b9: b7:7c:e3:4f:3b:87:ff:71:15:3f:55:dd:c5:01:b7: 57:20:c8:4d:42:16:54:1b:e7:75:1b:12:d4:ca:91: ad:cc:f3:57:50:10:fd:35:b3:91:3b:83:9a:13:e9: f9:f1:1e:01:01:92:66:81:40:26:c7:05:eb:a6:e9: be:f6:1e:5b:e8:a5:95:49:e1:9b:1a:c4:13:a3:12: c8:6b:44:75:87:4c:4e:40:bc:e6:46:95:27:4f:51: d7:f7:db:5f:06:2e:ef:41:3f:98:89:26:5d:b0:5a: dd:ab:00:a6:c6:11:c8:94:cf:68:ef:a1:da:57:55: 76:ae:5b:62:ca:65:40:0b:bc:38:de:96:ac:6d:0c: f8:8e:cc:5b:e4:c7:11:29:6c:55:e0:1b:20:96:43: 31:a3:65:0f:cd:50:29:2b:31:e9:c3:18:6c:bc:5b: 71:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:47:56:15:B9:93:6B:02:2F:D5:96:21:AF:24:70:36:EF:F5:34:20 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd818d78-5bf5-4ab2-a248-de1006ba6b9d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.156.0.0/14 Signature Algorithm: sha256WithRSAEncryption 0a:22:8c:fb:d0:b3:b2:46:75:8d:f7:57:45:ea:85:be:b7:ff: f3:1a:01:b8:fb:6a:cf:fe:df:a8:cb:0a:65:e5:51:fc:05:34: 6a:72:1c:af:78:a1:a6:00:0c:f0:19:5c:87:40:c9:c8:44:ac: 17:79:81:74:95:11:63:d2:40:4a:0e:77:8d:d7:ab:7c:ac:1e: ff:d8:a8:19:9a:e2:39:10:0c:c3:eb:a2:6b:eb:4d:57:1f:b7: 0f:f3:4e:45:5e:71:91:25:fa:95:20:f7:19:c4:e2:62:15:34: 60:82:8b:f2:c7:71:b6:dc:36:b4:30:e5:7e:07:e8:e7:ec:31: 87:95:b3:48:40:91:f4:57:00:60:43:67:bb:cd:e5:a3:d0:7c: fa:02:68:ca:88:07:7f:e3:e3:70:ad:81:96:8f:e5:f7:56:6d: 57:77:a8:87:47:97:c7:b2:f5:83:6e:0d:73:0c:b9:2e:03:09: a9:a8:77:88:03:5f:a3:cf:26:76:70:5e:3c:68:04:8e:7c:30: 2f:a8:c9:67:21:80:5c:42:f1:da:8c:08:8a:94:98:0e:4c:9f: 22:24:bd:67:55:80:57:e3:5c:58:bd:75:35:47:e2:21:4b:b0: c0:ed:db:2b:47:c1:fe:a4:b5:f1:eb:81:99:98:e0:e1:fc:7a: 95:61:07:02 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIB+QuhaZQHgwVyUP1+dd1Hft5bAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjQxMTA4MDAwMDAwWhcNMjQxMjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTI5MzA5NzI4ZDIyYzMxOTM5ZTlhMzNiZDA3ODdmMWFi MTM3NmZlY2Y3YTA3OGVmODAwZjFlODk4YWY3ZmJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwmhWTrK1R4SHrspggPShJoiMBHHXe0uVsr2jzk9tp9BYZ ulleshRGQaj+JvHWLbJNkAw/Q/GdkCcRkV9JSm/JyESTbTETE+437y4+jSt0/f72 G3+bmI/Cubd84087h/9xFT9V3cUBt1cgyE1CFlQb53UbEtTKka3M81dQEP01s5E7 g5oT6fnxHgEBkmaBQCbHBeum6b72HlvopZVJ4ZsaxBOjEshrRHWHTE5AvOZGlSdP Udf3218GLu9BP5iJJl2wWt2rAKbGEciUz2jvodpXVXauW2LKZUALvDjelqxtDPiO zFvkxxEpbFXgGyCWQzGjZQ/NUCkrMenDGGy8W3F5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUr0dWFbmTawIv1ZYhryRwNu/1NCAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkODE4ZDc4LTViZjUtNGFiMi1hMjQ4LWRlMTAwNmJhNmI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIQnDANBgkqhkiG9w0BAQsFAAOCAQEACiKM+9CzskZ1jfdXReqFvrf/8xoB uPtqz/7fqMsKZeVR/AU0anIcr3ihpgAM8Blch0DJyESsF3mBdJURY9JASg53jder fKwe/9ioGZriORAMw+uia+tNVx+3D/NORV5xkSX6lSD3GcTiYhU0YIKL8sdxttw2 tDDlfgfo5+wxh5WzSECR9FcAYENnu83lo9B8+gJoyogHf+PjcK2Blo/l91ZtV3eo h0eXx7L1g24Ncwy5LgMJqah3iANfo88mdnBePGgEjnwwL6jJZyGAXELx2owIipSY DkyfIiS9Z1WAV+NcWL11NUfiIUuwwO3bK0fB/qS18euBmZjg4fx6lWEHAg== -----END CERTIFICATE-----Generated at Sun Nov 24 03:17:33 2024 by rpki-client on console-ams.rpki-client.org